The company also warns that there have been reports that this vulnerability is already being exploited by hackers using a malicious Flash file (with an extension of .swf) embedded within a Microsoft Excel (.xls) spreadsheet file.